Data protection of MESSE ESSEN GmbH
The responsible person within the meaning of the General Data Protection Regulation and other national data protection laws of the member states as well as other data protection regulations is:
MESSE ESSEN GmbH
Messeplatz 1
D-45131 Essen
Telephone: +49.(0)201.7244.0
info@messe-essen.de
www.messe-essen.de
CEO
Oliver P. Kuhrt
Chairman of the Supervisory Board
Thomas Kufen (Lord Mayor)
Contact details of the data protection officer
SystemDatenschutzConsulting
Rebenlaube 12
45133 Essen
schroeder-dsc@web.de
www.rs-datenschutzconsulting.de
I. General information on visiting the website
1. Scope of the processing of personal data
As a matter of principle, we collect and process personal data of our users only insofar as this is necessary for the provision of a functional website as well as our contents and services. The processing of personal data of our users is regularly only carried out with the consent of the user. An exception applies in those cases in which it is not possible to obtain prior consent for actual reasons, the data is publicly accessible or the user provides it directly when contacting us, or the processing of the data is permitted by legal regulations.
2. Legal basis for the processing of personal data
Insofar as we obtain the consent of the data subject for the processing of personal data, Art. 6 para. 1 lit. a EU General Data Protection Regulation (GDPR) serves as the legal basis.
In the processing of personal data required for the performance of a contract to which the data subject is a party, Art. 6 para. 1 lit. b GDPR serves as the legal basis. This also applies to processing operations that are necessary to carry out pre-contractual measures.
Insofar as the processing of personal data is required to fulfil a legal obligation to which our company is subject, Art. 6 para. 1 lit. c GDPR serves as the legal basis.
In the event that the vital interests of the data subject or another natural person require the processing of personal data, Article 6(1)(d) GDPR serves as the legal basis.
If processing is necessary to safeguard a legitimate interest of our company or a third party and if the interests, fundamental rights and freedoms of the data subject do not outweigh the first-mentioned interest, Art. 6 para. 1 lit. f GDPR serves as the legal basis for processing.
3. Data erasure and storage time
The personal data of the person concerned will be deleted or blocked as soon as the purpose of storage ceases to apply. Furthermore, data may be stored if this has been provided for by the European or national legislator in EU regulations, laws or other provisions to which the person responsible is subject. The data will also be blocked or deleted if a storage period prescribed by the aforementioned standards expires, unless there is a need for further storage of the data for the conclusion or fulfilment of a contract.
4. Rights of the data subject
The data subject has the right to request confirmation from the data controller as to whether personal data concerning him or her are being processed; if this is the case, he or she has a right of access to such personal data and to the following information:
a. processing purposes;
b. the categories of personal data being processed;
c. the recipients or categories of recipients to whom the personal data have been or are still being disclosed, in particular recipients in third countries or international organisations;
d. if possible, the planned duration for which the personal data will be stored or, if this is not possible, the criteria for determining this duration;
e. the existence of a right of rectification or deletion of personal data concerning him or of a restriction on processing by the controller or of a right of opposition to such processing;
f. the existence of a right of appeal to a supervisory authority;
g. if the personal data are not collected from the data subject, all available information on the origin of the data;
You also have a right to restrict the processing of these data and a right to data transferability. If you have given us your consent, you can revoke it for the future. If you have any questions on the subject of data protection, you can contact the data protection officer at any time. You also have the right of appeal to the competent supervisory authority.
Responsible regulatory agency:
Landesbeauftragte für Datenschutz und Informationsfreiheit NRW
P.O. Box 20 04 44
40102 Düsseldorf
Phone: 0211 / 38424-0
Fax 0211 / 38424-10
poststelle@ldi.nrw.de
www.ldi.nrw.de
To exercise your rights under data protection law, please contact datenschutz@messe-essen.de.
5. Disclosure of data to third parties
To enable us to process your data for the purposes mentioned above, we may forward your data to selected partner companies. If necessary, we have concluded a contract with the recipients for order processing. These services include in particular ticketing, mailings, stand construction services and catalogue entries.
In addition, we may pass on your data to third parties if this is necessary to fulfil our range of services. These may include the following partners in particular: Transport companies (for orders), credit institutions and payment service providers, credit assessments. A passing on can also take place, if we are obligated to the passing on to public places, and/or on judicial order. We do not transfer any personal data to third parties outside the European Economic Area (EEA).
In the event of a credit risk (name, address, e-mail address, information on the company and, if applicable, contractual and receivables data), we will transfer your data to coface Debitorenmanagement GmbH, Isaac-Fulda-Allee 1, 55124 Mainz, and, if applicable, to other cooperating business information agencies for the purpose of checking the creditworthiness and checking the deliverability of the stated address and for the purpose of debt collection processing. The legal basis for this transmission are Art 6 I b GDPR and Art 6 I f GDPR. Transmissions on the basis of Art 6 I f GDPR may only take place if this is necessary to safeguard the legitimate interests of our company and does not outweigh the interests or fundamental rights and freedoms of the data subject which require the protection of personal data. Detailed information on our contractual partner, coface, within the meaning of Art 14 GDPR, i.e. the business purpose, the purpose of data storage there, the legal basis, the data recipients of coface, the right to self-disclosure and the right to deletion and correction as well as to profiling can be found at http://www.coface.de/Home/Allgemeine-Informationen/Datenschutz
II. Provision of the website and creation of log files
Every time you visit our website, our system automatically collects data and information from the computer system of the calling computer.
The following data is collected:
1. information about the browser type and version used
2. the user's operating system
3. the IP address of the user
4. date and time of access
The data is also stored in the log files of our system. This data is not stored together with other personal data of the user. The legal basis for the temporary storage of data and log files is Art. 6 para. 1 lit. f GDPR.The temporary storage of the IP address by the system is necessary to enable the website to be delivered to the user's computer. For this the IP address of the user must remain stored for the duration of the session.
The data is stored in log files to ensure the functionality of the website. In addition, the data serves us to optimize the website and to ensure the security of our information technology systems. An evaluation of the data for marketing purposes does not take place in this context. Our legitimate interest in data processing pursuant to Art. 6 para. 1 lit. f GDPR also lies in these purposes. The data will be deleted as soon as they are no longer necessary to achieve the purpose for which they were collected. In the case of the collection of data for the provision of the website, this is the case when the respective session has ended. If the data is stored in log files, this is the case after seven days at the latest.
The collection of data for the provision of the website and the storage of data in log files is absolutely necessary for the operation of the website. Consequently, there is no possibility of objection on the part of the user.
III. Usage of Cookies
Our website uses session cookies. Cookies are text files that are stored in the Internet browser or by the Internet browser on the user's computer system. If a user visits a website, a cookie may be stored on the user's operating system. This cookie contains a characteristic character string that enables a unique identification of the browser when the website is called up again. Cookies are not used to create personal user profiles.
You can set your browser so that you are informed about the setting of cookies and only allow cookies in individual cases, exclude the acceptance of cookies for certain cases or generally and activate the automatic deletion of cookies when closing the browser. When cookies are deactivated, the functionality of our websites may be limited.
Cookies are stored on the user's computer and transmitted to our site. Therefore, you as a user also have full control over the use of cookies. You can deactivate or restrict the transmission of cookies by changing the settings in your Internet browser. Cookies that have already been saved can be deleted at any time. This can also be done automatically. If cookies are deactivated for our website, it may no longer be possible to use all functions of the website in full.
1. Cookie banner
You can agree to the use of cookies via the cookie banner. The IP address, the time of access and the selected option (agree/reject) are logged. The data is automatically deleted after one year and not passed on to third parties.
2. Google Analytics and Google Tag Manager
Google Analytics and Google Tag Manager, web analytics services provided by Google Inc ("Google"), are used on this website. Cookies are used to enable a statistical analysis of the use of this website by its visitors and the display of usage-related content or advertising. Cookies are small text files that are stored by the Internet browser on the user's terminal device. etracker cookies do not contain any information that enables a user to be identified.
The information generated by the cookie about your use of this website is usually transmitted to a Google server in the USA and stored there. However, by activating IP anonymisation on this website using the code "anonymizeIp", Google will truncate your IP address beforehand within Member States of the European Union or in other contracting states to the Agreement on the European Economic Area.
Only in exceptional cases will the full IP address be transmitted to a Google server in the USA and shortened there. On behalf of the operator of this website, Google will use this information for the purpose of evaluating your use of the website, compiling reports on website activity and providing other services relating to website activity and internet usage to the website operator.
The data processing is carried out on the legal basis of Art. 6 para. 1 lit f (legitimate interest) of the EU Data Protection Regulation (EU-DSGVO). Our legitimate interest is the optimisation of our online offer and our web presence.
You can object to the aforementioned data processing at any time, insofar as it is carried out on a personal basis. Your objection will not have any adverse consequences for you.
You can obtain further information from Google on the topics of terms of use and data protection under the following links:
http://www.google.com/analytics/terms/de.html
https://www.google.de/intl/de/policies/
IV. Data transfer to countries outside the EU
To the extent necessary for our purposes, we also transfer your data to recipients outside the EU if you have given your consent, if there is a legal obligation or if the transfer of data is permitted on the basis of another legal basis. For example, your data will also be transferred to recipients based in the USA as part of data processing. An appropriate level of data protection is generally ensured by the conclusion of the so-called EU standard contractual clauses. Please note, however, that according to a recent ruling by the European Court of Justice (ECJ), there is no adequate level of data protection in the USA and thus a risk to the protection of your data. For example, under certain circumstances, your data may be processed by US authorities for control and monitoring purposes. As far as possible, we have concluded/will conclude the new EU standard data protection clauses with the providers. For the rest, we refer to Art. 49 DSGVO regarding the legal basis for the data transfer.
V. Links to other Websites
Our websites may contain links to other websites. We have no influence on the editorial content of external websites and on whether their operators comply with data protection regulations.
VI. Changes to this privacy policy
We reserve the right to change this data protection declaration at any time with effect for the future. An up-to-date version is available on the website. Please visit the website regularly and inform yourself about the applicable data protection regulations.
As of: 16.05.2023